$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: QOrRSdKEcRKpHSoJoK/F9K5kK4/hJpgxR3hvZl8yNLU= Subject key identifier: FC:3A:DB:A5:FD:64:1F:E6:90:60:99:36:C8:4A:FF:BF:95:CC:69:16 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05D4 Signing time: Fri 30 May 2025 23:13:49 +0000 Manifest this update: Fri 30 May 2025 23:13:48 +0000 Manifest next update: Fri 06 Jun 2025 23:13:48 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 7K4sDtfVPnM1pauMO/qTkrKr5w/np5rWl85jsMFky5s=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1502 (0x5de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 30 23:13:48 2025 GMT Not After : Jun 6 23:13:48 2025 GMT Subject: CN=683a3bad-1712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:36:c7:30:b4:40:7b:b4:51:b6:c9:4b:51:fc: f7:6b:93:eb:2e:26:7a:9c:ba:4c:fb:54:93:c6:68: 56:b8:fb:af:d0:4d:a4:f6:d8:da:d2:8c:5e:e6:86: de:66:dc:ee:1f:5d:62:79:a2:df:23:f9:25:5f:fa: b6:e6:da:e1:4a:0e:74:d0:d6:4e:9f:25:cd:31:8f: b5:04:cb:6f:61:5c:50:25:3f:c5:ff:36:ce:a2:79: bf:54:ab:61:5b:58:e7:56:0e:08:c4:12:d2:40:b7: 70:5a:a8:4d:7a:15:7d:70:1c:08:49:ad:35:8d:5d: db:2b:e4:78:a3:a5:c4:50:46:00:94:2a:94:4a:f2: ae:9a:18:c9:e2:02:b5:fc:a8:6c:bb:10:8a:30:78: 1d:d4:5d:5f:60:33:ed:25:12:5b:cd:c2:79:e0:f0: 27:b2:e2:25:e6:eb:ec:1e:f9:94:98:8a:c1:0a:5c: aa:a8:fd:05:f6:f4:9a:3d:67:89:91:4d:e9:d3:a0: d8:95:c2:18:6f:9b:7a:f2:94:3c:63:de:51:a0:b6: ca:fb:25:f3:3a:ba:bb:b2:fc:d2:7c:7f:10:41:97: 2d:31:85:fd:c7:81:b6:d5:ee:79:6a:01:d8:e3:fa: 47:72:c0:7c:7c:21:a8:e6:a2:2c:21:06:13:c0:8d: 0e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3A:DB:A5:FD:64:1F:E6:90:60:99:36:C8:4A:FF:BF:95:CC:69:16 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:51:5b:98:2b:0f:a0:6e:3f:38:4b:50:bb:2c:4f:7b:13:47: 8d:d8:fe:ea:10:4c:d0:f2:80:e9:24:3c:dc:40:ac:0f:db:c5: b4:cb:55:d0:7b:07:2b:cb:ed:c6:55:a6:21:e1:0e:af:eb:f2: 92:58:62:64:e0:be:aa:c1:0d:a6:9e:9f:98:86:61:d2:0b:84: 63:c9:72:f4:1b:ed:18:24:8a:e0:5d:a0:9a:7b:5c:19:49:d0: 38:76:b7:2c:9f:bf:87:f3:3d:e5:fa:78:b8:08:b0:6b:39:97: d7:83:2b:66:f1:c5:9d:da:61:21:92:b6:a1:32:eb:77:ee:dd: b9:0c:48:31:5d:5e:70:bc:a8:ed:11:64:7c:10:7d:04:f9:a0: bf:a6:c0:ff:e7:68:8a:e1:94:3c:8c:a1:e1:15:2b:b1:72:e4: cb:a8:f6:c5:54:98:d7:98:8d:21:94:7d:e7:db:dc:4f:62:e6: 82:46:1b:90:88:76:86:b6:89:7a:d8:1a:49:80:86:cd:f8:2a: 55:3d:e0:7f:be:a6:00:6f:94:ad:f8:0f:23:fc:f8:56:73:74: 67:fb:43:e8:3e:5d:df:22:8d:d9:70:30:16:0c:c5:86:18:64: 1f:1d:cf:9a:c9:63:ca:7d:a3:e4:86:2a:91:48:94:53:40:05: 1e:b9:78:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNTMwMjMxMzQ4WhcNMjUwNjA2MjMxMzQ4WjAYMRYwFAYD VQQDEw02ODNhM2JhZC0xNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjbHMLRAe7RRtslLUfz3a5PrLiZ6nLpM+1STxmhWuPuv0E2k9tja0oxe5obe ZtzuH11ieaLfI/klX/q25trhSg500NZOnyXNMY+1BMtvYVxQJT/F/zbOonm/VKth W1jnVg4IxBLSQLdwWqhNehV9cBwISa01jV3bK+R4o6XEUEYAlCqUSvKumhjJ4gK1 /KhsuxCKMHgd1F1fYDPtJRJbzcJ54PAnsuIl5uvsHvmUmIrBClyqqP0F9vSaPWeJ kU3p06DYlcIYb5t68pQ8Y95RoLbK+yXzOrq7svzSfH8QQZctMYX9x4G21e55agHY 4/pHcsB8fCGo5qIsIQYTwI0OsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw626X9 ZB/mkGCZNshK/7+VzGkWMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPUVuYKw+gbj84S1C7LE97E0eN2P7qEEzQ8oDpJDzcQKwP28W0y1XQ ewcry+3GVaYh4Q6v6/KSWGJk4L6qwQ2mnp+YhmHSC4RjyXL0G+0YJIrgXaCae1wZ SdA4drcsn7+H8z3l+ni4CLBrOZfXgytm8cWd2mEhkrahMut37t25DEgxXV5wvKjt EWR8EH0E+aC/psD/52iK4ZQ8jKHhFSuxcuTLqPbFVJjXmI0hlH3n29xPYuaCRhuQ iHaGtol62BpJgIbN+CpVPeB/vqYAb5St+A8j/PhWc3Rn+0PoPl3fIo3ZcDAWDMWG GGQfHc+ayWPKfaPkhiqRSJRTQAUeuXjo -----END CERTIFICATE-----Generated at Sat May 31 17:42:41 2025 by rpki-client